Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
File: qlTEdj6gGMPccCA9BO_nH9SxsGY.mft (raw, json)
Hash identifier: tI7DSxMDbcNLkIDS8XlQyP2jtaVdX0o1XLDp5pVYLp8=
Subject key identifier: 0C:82:CD:1A:3C:48:FB:D4:DB:17:C6:04:90:1F:74:7A:66:60:22:E0
Authority key identifier: AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
Certificate issuer: /CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Certificate serial: 0197C6815C4B4922D74CB172FC12CB3BCAF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
Manifest number: 129C
Signing time: Tue 01 Jul 2025 15:00:55 +0000
Manifest this update: Tue 01 Jul 2025 15:00:55 +0000
Manifest next update: Wed 02 Jul 2025 15:00:55 +0000
Files and hashes: 1: 3uOrqvmP8Ja1Ais3wLBFc-Yv8js.roa (hash: exOhjbpn5m/SyHb+kmTmnk1GW2qg2u8lsLmmerL5o9w=)
2: IzP3cDAX9aykSDzKdoH0u3AyA2M.roa (hash: NC8YDjUxW5EM3pV7QmdgO/vAJ9HwNpXuNP3EpqENObk=)
3: f2dJVu8muGYFnZFPcMivMl98KP8.roa (hash: rWmOSQ2QhYKl4L1IyTfTDLKWAGfQI+Kz8vdUqnsATxs=)
4: qlTEdj6gGMPccCA9BO_nH9SxsGY.crl (hash: 0/M7TF24cuzlrqDqFC6JZS4r4Bmq3uNZqBshyAWdJfI=)
5: svOlfPLlFDJ0sGLcz6b_IG_H3W0.roa (hash: zsvLBGGbQT+oIT4diXH9qGrVZIYbNUKP7yL6prMLg/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:81:5c:4b:49:22:d7:4c:b1:72:fc:12:cb:3b:ca:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Validity
Not Before: Jul 1 15:00:55 2025 GMT
Not After : Jul 2 15:00:55 2025 GMT
Subject: CN=0c82cd1a3c48fbd4db17c604901f747a666022e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d9:0c:19:95:9d:71:5a:9e:d5:ba:24:9e:02:
a1:a9:19:73:73:23:23:39:90:61:91:e7:e4:ac:35:
a1:75:f2:c4:62:00:26:8f:58:5f:79:a0:b5:fd:34:
f0:42:c4:85:50:73:d7:a4:72:9d:62:3f:fe:4d:e3:
60:88:15:27:90:c9:6c:f9:12:b8:8a:a2:73:44:9d:
25:8f:04:5a:9b:42:54:3a:30:10:44:38:31:dd:30:
b0:8a:e7:72:12:5b:99:8b:77:3e:59:d4:af:da:4a:
54:26:e5:87:f6:cd:2d:5d:eb:0c:9e:9b:9a:94:d2:
cf:db:bc:ec:e9:63:4a:04:26:63:98:c3:4a:0c:63:
8d:16:ef:6c:17:48:54:12:e6:b8:6e:b0:9d:18:6a:
ad:55:d4:44:09:c5:96:ac:e5:4b:12:74:dc:c1:69:
a6:84:fc:d7:8e:b4:5f:bb:3d:6f:ce:c3:41:7b:47:
d0:45:5e:e0:7b:ee:47:0a:ec:a8:61:e7:e0:0f:d9:
71:c1:9d:2b:1c:7e:96:75:37:c3:5b:e0:d0:af:ca:
b2:15:21:a0:76:fb:83:ee:97:f6:90:c5:7e:65:05:
83:5c:7f:c7:4b:22:12:52:95:e4:e9:c8:d5:1f:51:
72:8c:e1:c1:10:9c:d8:02:59:ca:17:d9:31:5b:8e:
a7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:82:CD:1A:3C:48:FB:D4:DB:17:C6:04:90:1F:74:7A:66:60:22:E0
X509v3 Authority Key Identifier:
keyid:AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:30:5c:09:31:78:34:37:e4:1a:65:31:b4:3c:07:17:30:66:
0e:55:6d:53:29:60:96:4f:34:64:61:3d:d8:89:ab:1a:e5:99:
bc:dc:ba:de:89:5b:c9:89:ee:e1:65:de:93:eb:06:c6:5d:15:
0c:a8:bb:ca:10:05:3e:b9:e9:fa:35:da:c0:ed:07:33:76:17:
34:a4:bf:ee:b1:04:a2:cb:74:20:59:be:aa:a0:b9:77:a1:6b:
0b:bd:c2:56:0d:a3:de:de:8d:4d:91:f7:df:50:55:40:79:f4:
e9:28:0e:c0:33:db:aa:86:70:9a:68:de:3c:c5:12:1b:0f:f8:
44:ab:e3:0d:68:9e:a2:21:e0:ba:7e:15:0e:dc:96:61:38:c2:
48:9c:88:10:95:0f:5c:69:52:f1:7f:bb:2c:d0:c5:b6:78:e7:
3c:13:ea:27:fe:7d:95:8e:87:fc:66:20:d2:3b:9a:51:8c:50:
40:83:38:89:37:f4:33:3b:3e:86:34:ae:84:ad:5c:0d:c6:20:
a3:a1:49:9e:7f:78:f1:93:85:a7:de:a1:98:9d:84:b7:28:3c:
85:c0:93:db:fb:cc:84:1c:26:aa:8b:5d:8a:95:fd:07:c4:e8:
58:27:ff:95:e1:79:2c:cf:62:bb:7a:25:50:4a:3b:ff:75:14:
80:60:b0:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 18:24:57 2025 by rpki-client